Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NU3qmvWHKfLhrfG_mCwxls6AF-s.roa
File: NU3qmvWHKfLhrfG_mCwxls6AF-s.roa (raw, json)
Hash identifier: Afm24ag8WiaNxNNCrKMhqOkD80w4uoJ3Y/ZTtoqxp60=
Subject key identifier: 35:4D:EA:9A:F5:87:29:F2:E1:AD:F1:BF:98:2C:31:96:CE:80:17:EB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NU3qmvWHKfLhrfG_mCwxls6AF-s.roa
Signing time: Thu 15 Sep 2022 02:39:09 +0000
ROA not before: Thu 15 Sep 2022 02:39:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 150.117.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=354DEA9AF58729F2E1ADF1BF982C3196CE8017EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8e:39:c0:72:c7:11:5b:21:fa:22:ec:4f:b7:
0d:01:a9:c8:52:13:ee:84:f4:84:d0:3c:b5:5b:dd:
50:33:a2:ac:c7:6f:4b:87:42:f1:8b:c5:5c:14:60:
6d:96:99:ef:34:49:24:2c:13:16:d1:53:b3:c8:42:
0e:c3:03:c9:f6:4a:75:e5:dc:1b:32:84:c5:f6:81:
08:9c:b2:37:be:7d:01:15:c9:8c:1a:ea:46:34:96:
0c:30:f5:75:89:17:72:7a:5a:f3:be:79:0c:49:45:
6d:5d:89:6e:4f:30:5b:57:04:68:5d:34:ab:c4:ad:
b8:05:0e:eb:93:86:53:d2:ba:a3:11:62:12:9b:b5:
5f:2f:fe:78:4e:7f:e8:f0:6e:06:d4:bf:16:15:05:
cc:f4:f4:99:09:d9:c3:f7:56:81:36:94:08:27:d7:
c8:78:e1:a9:e9:42:1d:db:67:2b:ea:92:b7:66:5d:
a6:7e:08:de:12:09:c2:e8:9c:f6:f2:8b:f1:0c:32:
81:dc:5e:5a:2b:2d:ae:a1:99:68:81:9c:f2:b1:e7:
46:f4:a0:9e:7a:ad:23:3a:cb:4e:72:c8:94:8c:e9:
c8:f5:b8:f0:79:90:cf:0f:42:31:9d:53:2c:64:8d:
61:d9:b1:69:7c:f6:30:eb:f3:b7:f2:e8:d5:3f:a7:
6a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4D:EA:9A:F5:87:29:F2:E1:AD:F1:BF:98:2C:31:96:CE:80:17:EB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NU3qmvWHKfLhrfG_mCwxls6AF-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.16.0/20
Signature Algorithm: sha256WithRSAEncryption
00:f3:11:e0:ab:f0:f3:40:4e:e9:cc:47:14:72:46:8d:de:bf:
de:ca:a7:62:33:0e:2d:e6:7b:58:74:7d:76:41:f2:7f:9e:88:
46:b1:d0:98:e2:6b:55:c0:96:24:a4:43:80:b3:f2:99:73:16:
55:7b:be:1b:fa:5d:f0:0b:62:18:98:ec:42:64:b8:c3:dd:f4:
96:69:06:ba:29:ad:49:bd:72:32:ff:d8:f3:7f:fe:6f:d8:c4:
80:19:8e:05:aa:f0:22:70:2f:42:ea:73:8f:05:9d:84:5f:22:
7a:33:40:8d:25:85:33:64:df:6c:d1:e7:88:a5:6e:01:ac:94:
48:2f:07:b7:c6:5e:2e:82:e6:b7:a2:69:6f:a3:3f:0b:ea:49:
e7:84:88:7c:8e:9b:66:93:9d:39:a2:d7:0e:10:c3:73:c6:e9:
cc:a5:40:bd:ac:66:55:69:65:bb:f2:75:9a:9d:19:02:fa:28:
07:b1:44:02:7e:45:9f:2d:75:24:ba:9c:56:1b:72:96:ed:55:
37:3c:e9:24:76:4f:42:1f:4e:60:ab:0e:27:30:30:9c:84:22:
7d:a3:7d:83:24:0b:85:58:2d:eb:47:39:f1:f0:9a:27:4a:8b:
83:24:18:a3:24:4b:77:1b:4e:8f:c3:3b:12:cc:09:de:63:6b:
78:14:c0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:41 2025 by rpki-client